[jboss-jira] [JBoss JIRA] (WFLY-3691) AuditProvider mentions "[Success]" even if username/password is invalid
Josef Cacek (JIRA)
issues at jboss.org
Wed Jul 30 07:04:30 EDT 2014
[ https://issues.jboss.org/browse/WFLY-3691?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Josef Cacek updated WFLY-3691:
------------------------------
Component/s: Security
> AuditProvider mentions "[Success]" even if username/password is invalid
> -----------------------------------------------------------------------
>
> Key: WFLY-3691
> URL: https://issues.jboss.org/browse/WFLY-3691
> Project: WildFly
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Security
> Affects Versions: 8.1.0.Final
> Reporter: Josef Cacek
> Assignee: Josef Cacek
>
> Description of problem:
> AuditProvider in security-domain mentions "[Success]" as follow:-
> 11:37:26,835 TRACE [org.jboss.security.audit] (HttpManagementService-threads - 3) [Success]Source=org.jboss.as.security.service.SimpleSecurityManager;Action=authentication;principal=admin;
> even if a username/password is wrong.
--
This message was sent by Atlassian JIRA
(v6.2.6#6264)
More information about the jboss-jira
mailing list